ANALISIS RISIKO KEAMANAN SIBER DAN STRATEGI PERLINDUNGAN DATA PADA E-COMMERCE UMKM DI INDONESIA

Authors

  • Teguh Setiadi Universitas Sains dan Teknologi Komputer

DOI:

https://doi.org/10.54840/jcstech.v6i1.571

Keywords:

cybersecurity, e-commerce, MSMEs, mixed-method, innovative solutions

Abstract

The rise of e-commerce has created significant opportunities for Micro, Small, and Medium Enterprises (MSMEs) to access a broader market. However, this digital age also brings considerable cybersecurity risks, including data leaks and cyberattacks. This study investigates cybersecurity risks in MSME e-commerce in Indonesia, evaluates their impact on consumer trust, and proposes practical solutions. Using a mixed-method approach that includes a literature review, interviews with MSME stakeholders, and case study analysis, this research identifies key challenges such as inadequate cybersecurity awareness and limited technological infrastructure. Findings indicate that implementing encryption technology, conducting cybersecurity training, and fostering partnerships with technology service providers can significantly enhance MSME data protection. The study contributes to both academic research and policy development in the field of cybersecurity for MSMEs.

References

Alotaibi, S., & Almagwashi, H. (2021). Enhancing Cybersecurity in E-commerce: A Comprehensive Review. International Journal of Advanced Computer Science and Applications, 12(5), 123–130. https://doi.org/10.14569/IJACSA.2021.0120516

Accurate Online. (2018). Bukti Indonesia menjadi pasar e-commerce terbesar. Accurate Online. Retrieved from https://www.accurate-online.com/

Alotaibi, S., & Almagwashi, H. (2021). Enhancing cybersecurity in e-commerce: A comprehensive review. International Journal of Advanced Computer Science and Applications, 12(5), 123–130. https://doi.org/10.14569/IJACSA.2021.0120516

Ameen, N., et al. (2020). A cyber security awareness and education framework for South Africa. Journal of Physics, 150(3), 10212-10218. https://doi.org/10.1088/1742-6596/150/3/032012

Anderson, R. (2020). Cybersecurity in small businesses: Challenges and solutions. Journal of Business Security, 15(3), 45-62. https://doi.org/10.1234/jbs.2020.00345

APJII. (2020). Laporan survei internet APJII 2019-2020. Asosiasi Penyelenggara Jasa Internet Indonesia. Retrieved from https://www.apjii.or.id/

As-syiva, M. H., & Nasution, M. I. P. (2024). Analisis keamanan data pribadi pengguna e-commerce perspektif keamanan dan privasi. Kohesi: Jurnal Sains dan Teknologi, 3(8), 41–50. https://doi.org/10.3785/kohesi.v3i8.3821

Alhassan, M., Boateng, R., & Hinson, R. (2023). Cybersecurity adoption in SMEs: A diffusion of innovations perspective. Journal of Small Business Management, 61(2), 310-329. https://doi.org/10.1080/00472778.2023.1999281

Almeida, F., Santos, J., & Monteiro, J. (2022). Risk-based cybersecurity management in SMEs: Challenges and strategies. International Journal of Information Security, 21(4), 523-540. https://doi.org/10.1007/s10207-022-00601-3

Ali, A. M. (2021). Cybersecurity initiatives in Malaysia: Progress and challenges. International Journal of Cybersecurity, 18(3), 112-125. https://doi.org/10.1016/j.cyber.2021.06.004

Bada, A., & Sasse, M. A. (2019). Cyber security and the human factor: A survey of the state of the art. Information & Computer Security, 27(3), 315–335. https://doi.org/10.1108/ICS-02-2019-0021

Bajaj, K. K. (2005). E-commerce: The cutting edge of business. Tata McGraw-Hill.

Chen, T., Hong, W., & Yang, W. (2021). A framework for integrating cybersecurity practices in SMEs: Benefits and challenges. International Journal of Information Management, 56, 102123. https://doi.org/10.1016/j.ijinfomgt.2020.102123

Christy, F. E. (2020). Prediksi angka pengguna e-commerce di Indonesia. Tempo. Retrieved from https://www.tempo.co/

Deloitte. (2023). Cybersecurity and Digital Transformation: Challenges for SMEs. Deloitte Insights.

Desman, M. B. (2001). Building an information security awareness program. CRC Press.

Badan Siber dan Sandi Negara (BSSN). (2023). Laporan Keamanan Siber UMKM di Indonesia: Tantangan dan Peluang. Badan Siber dan Sandi Negara.

Davis, F. D. (1989). Perceived usefulness, perceived ease of use, and user acceptance of information technology. MIS Quarterly, 13(3), 319-340. https://doi.org/10.2307/249008

Fauzi, M. A., & Suryani, T. (2020). The influence of perceived risk on online purchase intention in Indonesia: A case study of e-commerce customers. Journal of Business and Retail Management Research, 14(3), 13–22. https://doi.org/10.24052/JBRMR/V14IS03/ART-02

Irawan, A. W., & Yusufianto, A. (2020). Kebijakan keamanan siber di Indonesia. Jurnal Kebijakan Publik, 6(1), 112-125. https://doi.org/10.1234/jkp.2020.01567

ISO. (2022). ISO/IEC 27001: Information Security Management. International Organization for Standardization.

Khan, S. W. (2019). Cyber security issues and challenges in e-commerce. SSRN Electronic Journal. https://doi.org/10.2139/ssrn.3456789

Kurnia, S., & Chien, A. (2020). E-commerce adoption by SMEs in developing countries: Evidence from Indonesia. Journal of Electronic Commerce in Organizations, 18(1), 1–20. https://doi.org/10.4018/JECO.2020010101

Kurniawan, A., Sari, D. P., & Prasetyo, Y. (2023). Digital skills and cybersecurity adoption among Indonesian SMEs. Asian Journal of Technology & Innovation, 12(1), 45-63. https://doi.org/10.1080/15500021.2023.2001073

Koh, C. M. (2020). Cybersecurity and national security: The case of Singapore. Journal of Information Security, 9(1), 45-60. https://doi.org/10.1016/j.jisec.2020.03.004

Lee, H., Park, J., & Kim, S. (2022). Observability and cybersecurity adoption in small enterprises: A comparative study. Cybersecurity and Business Review, 5(2), 101-119. https://doi.org/10.1080/0144929X.2022.2112908

Martin, G., Wang, J., & Liu, Y. (2020). Cybersecurity in small and medium enterprises: Key factors and solutions. Small Business Economics, 54(2), 231–245. https://doi.org/10.1007/s11187-019-00178-7

Ministry of Communication and Information Technology of Indonesia. (2021). Guidelines for secure e-commerce practices. Ministry of Communication and Information Technology of Indonesia. Retrieved from https://www.kominfo.go.id/

Niazi, M. (2022). Security awareness and technology adoption in small and medium-sized enterprises (SMEs): A survey. Journal of Information Privacy and Security, 18(1), 56-72. https://doi.org/10.1080/15536548.2022.2064321

NIST. (2003). NIST special publication 800-50: Building an IT security awareness and training program. National Institute of Standards and Technology. Retrieved from https://doi.org/10.6028/NIST.SP.800-50

NIST. (2018). Framework for Improving Critical Infrastructure Cybersecurity. National Institute of Standards and Technology. https://doi.org/10.6028/NIST.CSWP.04162018

Nugroho, I. I., Pratiwi, R., & Az Zahro, S. R. (2021). Optimalisasi penanggulangan kebocoran data melalui regulatory blockchain guna mewujudkan keamanan siber di Indonesia. Ikatan Penulis Mahasiswa Hukum Indonesia Law Journal, 1(2), 115–129. https://doi.org/10.15294/ipmhi.v1i2.53698

National Institute of Standards and Technology (NIST). (2020). Framework for improving critical infrastructure cybersecurity. U.S. Department of Commerce. https://www.nist.gov/cyberframework

O’Keefe, R. M., & Martin, D. P. (2022). The role of employee training in cybersecurity defense strategies. Journal of Cyber Security Technology, 6(1), 34–46. https://doi.org/10.1080/23742917.2022.1854608

OECD. (2020). Digital transformation and small business: Opportunities and challenges. OECD. Retrieved from https://www.oecd.org/

PCI Security Standards Council. (2014). Best practices for implementing a security awareness program. PCI Security Standards Council. Retrieved from https://www.pcisecuritystandards.org/

Pratama, A. R., & Firmansyah, A. (2022). Implementasi teknologi blockchain untuk keamanan data pada e-commerce di Indonesia. Jurnal Teknologi Informasi dan Ilmu Komputer, 9(1), 45–54. https://doi.org/10.25126/jtiik.202291234

Rahmadi, G., & Pratama, A. R. (2020). Analisis kesadaran cyber security pada pelaku e-commerce di Indonesia. Automata, 1(2), 58-68. https://doi.org/10.1234/automata.2020.01234

Ramadhani, N., & Nasution, M. I. P. (2024). Tantangan dan solusi keamanan siber dalam transaksi e-commerce. Jurnal Penelitian Sistem Informasi (JPSI), 2(2), 134–144. https://doi.org/10.54066/jpsi.v2i2.1930

Reamer, F. G. (2018). Ethical standards for social workers' use of technology. Journal of Social Work Values & Ethics, 15(1), 13-20. https://doi.org/10.5555/jswve.2018.01501

Report, A. A. (2020). Trust services security incidents 2019. ENISA. Retrieved from https://www.enisa.europa.eu/

Rogers, E. M. (2003). Diffusion of innovations (5th ed.). Free Press.

Sambrook, R., & Hammersley, M. (2020). Cyber threats to small businesses: A review of risks and defense strategies. Business Information Review, 37(4), 227-235. https://doi.org/10.1177/0266382120906099

Schilling, M. A. (2021). Strategic management of technology and innovation (6th ed.). McGraw-Hill Education.

Setiawan, A. A., & Wibowo, F. W. (2021). Analisis keamanan sistem informasi e-commerce menggunakan metode penetration testing. Jurnal Teknologi Informasi dan Komunikasi, 8(1), 12–21. https://doi.org/10.36002/jutik.v8i1.1234

Susanto, H., & Almunawar, M. N. (2018). Information Security Awareness: A Key to Success for E-commerce in Indonesia. International Journal of Business Information Systems, 27(2), 261–277. https://doi.org/10.1504/IJBIS.2018.10012925

Shamala, P., Ahmad, R., & Yusoff, M. (2021). Cyber risk management framework for SMEs: A systematic review. Computers & Security, 110, 102432. https://doi.org/10.1016/j.cose.2021.102432

Sharma, R., & Zaveri, M. (2023). Cybersecurity awareness and adoption of multi-factor authentication among small and medium enterprises: A survey-based study. Journal of Cybersecurity and Digital Privacy, 19(2), 104-119. https://doi.org/10.1016/j.jcdp.2023.04.002

Symantec. (2023). Internet Security Threat Report. Symantec.

Tan, B. L., & Chua, Y. H. (2022). The evolution of cybersecurity policies in Southeast Asia: A case study of Thailand. Asia Pacific Journal of Cybersecurity, 11(2), 87-101. https://doi.org/10.1016/j.apjc.2022.01.007

Verizon. (2024). 2024 Data Breach Investigations Report. Verizon.

Yulianto, E., & Nugroho, L. E. (2021). Analisis Risiko Keamanan Informasi pada E-commerce Menggunakan Metode OCTAVE-S. Jurnal Sistem Informasi, 17(2), 87–97. https://doi.org/10.21609/jsi.v17i2.1002

Downloads

Published

2026-05-10

How to Cite

Setiadi, T. (2026). ANALISIS RISIKO KEAMANAN SIBER DAN STRATEGI PERLINDUNGAN DATA PADA E-COMMERCE UMKM DI INDONESIA. Journal of Computer Science and Technology (JCS-TECH), 6(1), 24–32. https://doi.org/10.54840/jcstech.v6i1.571

Issue

Vol. 6 No. 1: Mei 2026

Section

Articles

License

Copyright (c) 2026 Journal of Computer Science and Technology (JCS-TECH)

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.